Security Advisories

MS16-SEP - Microsoft Security Bulletin Summary for September 2016 - Version: 2.0

Revision Note: V2.0 (July 11, 2017): Revised Windows Affected Software and Vulnerability Severity Ratings table to include Windows 10 Version 1703 for 32-bit Systems and Windows 10 Version 1703 for x64-based Systems because they are affected by CVE-2016-3305. Microsoft recommends that customers running Windows 10 Version 1703 should install update 4025342 to be protected from this vulnerability.
Summary: This bulletin summary lists security bulletins released for September 2016.

MS16-111 - Important: Security Update for Windows Kernel (3186973) - Version: 2.0

Severity Rating: Important
Revision Note: V2.0 (July 11, 2017): Revised Windows Affected Software and Vulnerability Severity Ratings table to include Windows 10 Version 1703 for 32-bit Systems and Windows 10 Version 1703 for x64-based Systems because they are affected by CVE-2016-3305. Microsoft recommends that customers running Windows 10 Version 1703 should install update 4025342 to be protected from this vulnerability.
Summary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker runs a specially crafted application on a target system.

4033453 - Vulnerability in Azure AD Connect Could Allow Elevation of Privilege - Vers...

Revision Note: V1.0 (June 27, 2017): Advisory published.
Summary: Microsoft is releasing this security advisory to inform customers that a new version of Azure Active Directory (AD) Connect is available that addresses an Important security vulnerability.

Apple Patches iOS BroadPwn – Daily Security Byte

This week, Apple published their security updates for the month of July. These patches fix many security flaws in all Apple’s operating systems, including serious remote code execution vulnerabilities. The iOS update in particular fixes a well-publicized vulnerability called BroadPwn, which could allow attackers to take over any iPhone if they are within wireless range. […]

Read More - Apple Patches iOS BroadPwn – Daily Security Byte

Create Firewall Rules with Python and the WatchGuard Fireware CLI

A past Secplicity post explains how to automate deployment of a WatchGuard Firebox Cloud on AWS. The related GitHub repository includes some Python code that configures the Firebox via the WatchGuard Fireware CLI (Command Line Interface). The code runs in an AWS Lambda function, which is a way to execute source code without setting up […]

Read More - Create Firewall Rules with Python and the WatchGuard Fireware CLI

The Dark Web Takes a Page from the Corporate Playbook

computer in dark

Cybercriminals are becoming more efficient and organized online. The dark web, a term that means the parts of the Internet that require specific software, configurations or authorization to access and often sell illegal goods and services, is evolving into a full-fledged business. This underground criminal-lead market now offers customers the ability to review, assess and […]

Read More - The Dark Web Takes a Page from the Corporate Playbook

For More Information, call 1-800-544-4627, or Contact Us
Print this page